Vulnerability Details CVE-2008-3175
Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.243
EPSS Ranking 95.8%
CVSS Severity
CVSS v2 Score 10.0
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063594.html
- http://secunia.com/advisories/31319
- http://www.securityfocus.com/archive/1/495020/100/0/threaded
- http://www.securityfocus.com/bid/30472
- http://www.securitytracker.com/id?1020590
- http://www.vupen.com/english/advisories/2008/2286
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44137
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181721
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063594.html
- http://secunia.com/advisories/31319
- http://www.securityfocus.com/archive/1/495020/100/0/threaded
- http://www.securityfocus.com/bid/30472
- http://www.securitytracker.com/id?1020590
- http://www.vupen.com/english/advisories/2008/2286
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44137
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181721
Products affected by CVE-2008-3175
-
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1
-
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5
-
cpe:2.3:a:broadcom:desktop_management_suite:11.1
-
cpe:2.3:a:broadcom:desktop_management_suite:11.2
-
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.0
-
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.1
-
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.5
-
cpe:2.3:a:ca:brightstor_arcserve_backup:11.0
-
cpe:2.3:a:ca:brightstor_arcserve_backup:11.1
-
cpe:2.3:a:ca:protection_suites:2
-
cpe:2.3:a:ca:protection_suites:3.0
-
cpe:2.3:a:ca:protection_suites:3.1